Information Security Governance

6 months ago


مصر, Egypt EGBank Full time

**MAJOR RESPONSIBILITIES AND ACOUNTABILITIES**
- Review and evaluate the design of security systems.
- Review and evaluate security policies, controls and incident response planning in cooperation with stakeholders throughout the enterprise.
- Review identity and access policies in cooperation with stakeholders throughout the enterprise.
- Review investigations after breaches or incidents, including impact analysis and recommendations for avoiding similar vulnerabilities;
- Ensure compliance with the changing laws and applicable regulations;
- Translate that knowledge to identification of risks and actionable plans to protect the business;
- Schedule periodic security audits;
- Make sure that security policies and procedures are communicated to all personnel and that compliance is enforced;
- Constantly update the security strategy to leverage new technology and threat information;
- Brief the executive team on status and risks, including taking the role of champion for the overall strategy and necessary budget in cooperation with stakeholders throughout the enterprise.
- Communicate best practices and risks to all parts of the business, outside IT.
- Develop, implement and monitor in cooperation with stakeholders throughout the enterprise a global strategic, comprehensive enterprise information security and risk management program to ensure that the integrity, confidentiality and availability of information is owned, controlled or processed by the organization.
- Manage the enterprise's information security organization consisting of direct reports and indirect reports. This includes hiring, training, staff development, performance management and annual performance reviews.
- Develop security organization talent, engaging/managing third parties as needed to ensure the required capabilities are available either internally or externally.
- Develop, maintain and publish up-to-date information security policies, standards and guidelines in cooperation with stakeholders throughout the enterprise. Oversee the approval, training, and dissemination of security policies and practices.
- Implement a standard Risk Philosophy, Risk Universe & Risk Taxonomy.
- Develop and manage information security budgets and monitor for variances.
- Create and manage information security and risk management awareness training programs for all employees, contractors and approved system users.
- Work directly with the business units to facilitate security risk assessment and risk management processes, and work with stakeholders throughout the enterprise on identifying acceptable levels of residual risk.
- Provide regular reporting on the current status of the security program to management, senior managers and the Board of Directors as part of a strategic enterprise risk management program.
- Create a framework for roles and responsibilities with regard to information ownership, classification, accountability and protection.
- Develop and implement an information security management framework that aligns with EGBank business model, EGbank risk profile, and EGbank existing compliance initiatives and efforts.
- Coordinate information security and risk management projects in cooperation with stakeholders throughout the enterprise from across the business unit teams and IT organization.
- Work with our compliance team to ensure that security and privacy programs are in compliance with relevant laws, regulations and policies to minimize or eliminate risk and audit findings.
- Define and facilitate the global information security risk assessment process including the reporting and oversight of treatment efforts to address negative findings.
- Manage security incidents and events to protect corporate IT assets, including regulated data and the company's reputation.
- Monitor the external threat environment for emerging threats, and advise relevant stakeholders on the appropriate courses of action.
- Liaise with external agencies, such as law enforcement and other advisory bodies as necessary, to ensure that the organization maintains a strong security posture.
- Develop and oversee effective disaster recovery policies and standards to align with enterprise business continuity management program goals in cooperation with stakeholders throughout the enterprise.
- Coordinate the development of implementation plans and procedures to ensure that business-critical services are recovered in the event of a security event.
- Provide direction, support and in-house consulting in these areas.
- Facilitate a metrics and reporting framework to measure the efficiency and effectiveness of the program, facilitate appropriate resource allocation, and increase the maturity of the security.

**MINIMUM**
**JOB REQUIREMENTS**
- Minimum education:
- B.Sc of Engineering, Computer Science or similar discipline- Languages- Fluency in English and Arabic Spoken and Written- Ideal experience- 10+years of relevant professional work experience



  • مصر, Egypt SSC Egypt Full time

    1. Conduct the annual review and update of the area’s processes, procedures and policies with the adherence to the developed SLAs. This includes mainly the review of the Information Governance Policy, the Security Governance Policy, the Data Classification Policy and the Information Access Management & Handling Procedures. 2. Design and Develop the Data...


  • مصر, Egypt Majid Al Futtaim Full time

    **BUSINESS INTRODUCTION** Majid Al Futtaim Holding is the leading shopping mall, retail, communities, entertainment developer and operator in the Middle East, North Africa, and Central Asia regions. With over 48,000 people, revenues of over US$ 11 Billion, and operations in 18 countries. Some of the iconic brands we carry include Mall of the Emirates,...


  • مصر, Egypt AXA Egypt Full time

    Implements security controls, risk assessment framework, and program that align to regulations requirements, ensuring documented and sustainable compliance that aligns with AXA Group Security Standards. - Manage the cyber and information security risk management lifecycle, including gaining assurance of all existing and relevant cyber and information...


  • مصر, Egypt Envision Employment Solutions Full time

    **Ready and hungry for a new adventure? You are definitely in the right place! We at **Envision Employment Solutions** are always on the look for top talents around the globe and matching them with our partners' hiring needs, to help them build and scale! - Our partners offer awesome work environment, competitive salaries, full benefits, and many others...


  • مصر, Egypt Envision Employment Solutions Full time

    **Ready and hungry for a new adventure? You are definitely in the right place! We at **Envision Employment Solutions** are always on the look for top talents around the globe and matching them with our partners' hiring needs, to help them build and scale! - Our partners offer awesome work environment, competitive salaries, full benefits, and many others...


  • مصر, Egypt Envision Employment Solutions Full time

    **Ready and hungry for a new adventure? You are definitely in the right place! We at **Envision Employment Solutions** are always on the look for top talents around the globe and matching them with our partners' hiring needs, to help them build and scale! - Our partners offer awesome work environment, competitive salaries, full benefits, and many others...


  • مصر, Egypt athGADLANG Full time

    **aG Resources is hiring an Information Security Consultant with a minimum of 2 years of experience.** **Responsibilities**: - Advise on ISMS policies and procedures. - Conduct security inspections, audits, and assessments. - Develop and implement ISMS management systems. - Deliver training sessions on information security awareness and practices. -...


  • مصر, Egypt Allianz Egypt Full time

    **Responsibilities**: - Control & Review Audits/assessments; management of incident prevention, detection and incident response and ensure ongoing maintenance of security. - Risk Assessment Develop and implement an ongoing risk assessment program targeting information security. Recommend methods foe vulnerability detection and remediation and oversee...


  • مصر, Egypt SSC Egypt Full time

    1. Follow the security risk assessment methodology to assess the different business initiatives and projects. 2. Perform security risk assessments to align with the bank’s security policies and guidelines. 3. Validate and review the business requirements and ensure the relevant security measures are catered for throughout the different phases of the...


  • مصر, Egypt Staff Arabia Full time

    Excellent Vacancies in Saudi Arabia/ IT Our client, is one of the most well-known universities in Saudi Arabia, urgently requires the following positions: **Information Security Officer** - Bachelor in Computer or equal - 5 years experience - CISSP - Certified Information Systems Security Professional

  • Information Security)

    6 months ago


    مصر, Egypt MigrationIT Full time

    **Job Information**: Industry - BankingField - Strategy, Planning & PMBudget - EGP 35,000.00Field / Area - Project ManagementJob Category - Project ManagerWork Experience - 1-3 yearsCity - New CairoState/Province - AI QahirahCountry - EgyptZip/Postal Code - 11311- Responsible for leading and administering the overall planning, providing high-level project...

  • IT Grc Specialist

    6 months ago


    مصر, Egypt CEQUENS Full time

    **Key Roles and Responsibilities**: **1. Governance**: - Develop and maintain IT governance policies, procedures, and standards in alignment with industry best practices and regulatory requirements. - Implement governance frameworks such as COBIT, ISO 27001, NIST, SOC 2, PCI etc., to ensure effective IT governance across the organization. - Coordinate with...


  • مصر, Egypt SSC Egypt Full time

    1. Oversee and manage the Information Security Management team to ensure proper management of the resources to support the ongoing business initiatives and ensure clear personal development plan is developed for each team member with an adequate training and coaching plan. 2. Ensure the annual review and update of the area’s processes, procedures and...


  • مصر, Egypt Egyptian Banks Company Full time

    Identifies infrastructure Information security risks and define the controls required to mitigate the risk. - Develop and maintain organization, Third party and vendors risk management framework - Conduct continuous risk assessment for existing and new IT assets - Conduct Vendors and third party risk assessment. - Establish reporting communications that...


  • مصر, Egypt Arrow Electronics, Inc. Full time

    **Position**: Senior Engineer, Information Security **Responsibilities**: - Performs risk analysis, vulnerability assessment, pen-testing, source code review, and provides recommendations for remediation. - Performs security controls effectiveness assessments. - Performs security-related analysis and testing in the web development process. -...

  • Senior Specialist

    6 months ago


    مصر, Egypt Allianz Egypt Full time

    **Responsibilities**: - Control & Review: Audits / Assessments; management of incident prevention, detection and incident response and ensure ongoing maintenance of security. - Risk Assessment: Develop and implement an ongoing risk assessment program targeting information security. Recommend methods for vulnerability detection and remediation and oversee...


  • مصر, Egypt SSC Egypt Full time

    1. Ensure proper management of the Security Compliance resources to support ongoing business initiatives from a security compliance perspective. 2. Ensure the annual review and update of the area’s processes and procedures with the development and adherence to the developed SLAs. 3. Support the implementation of the key strategic business initiatives and...


  • مصر, Egypt EGBank Full time

    Description Implements security controls, risk assessment framework, and programs that align with regulatory requirements, ensuring documentation and sustainable compliance that is in alignment with the Bank’s objectives. and advances Bank business objectives. Evaluates risks and develops security standards, procedures, and controls to manage and control...

  • Cyber Security Demand

    6 months ago


    مصر, Egypt Vodafone Full time

    **What you’ll do**: Role purpose: To act as interface layer between Cyber Security different teams and other functions across the company for the incoming and outgoing demands that require scheduling, tracking and engagement with more than one Cyber security functions as well as leading big projects across - Key accountabilities and decision ownership -...

  • Security Architect

    6 months ago


    مصر, Egypt SSC Egypt Full time

    1. Work closely with other functional area architects and security specialists to ensure adequate security solutions are in place throughout all systems and platforms to mitigate identified risks sufficiently, and to meet business objectives and regulatory requirements. 2. Oversee the development and maintenance of the information security strategy. 3....